Cybersecurity Engineer Analyst

Adelphi, MD

SUMMARY:

Founded in 2001, Indigo IT is an award winning information technology consulting and services company. We are a trusted services provider to government agencies seeking innovative Cloud, Cybersecurity, Knowledge Management, and Enterprise solutions. We know our defense, federal, and civilian customers have critical IT infrastructures that must remain reliable, available, and maximized. Indigo IT is mission focused and committed to maintaining a sense of urgency in anticipating and supporting our customers’ technology goals and objectives. Our unique ability to think beyond today allows our clients to stay ahead of their IT challenges. As a Veteran-Friendly employer, we are proudly partnered with the Virginia Values Veterans (V3) Program, and a recipient of the HIRE Vets Gold Medallion Award, which recognizes our commitment to recruiting our nation’s Veterans. Recognized on the Inc. 5000 list of America’s fastest growing companies in 2020 & 2021 and named as one of the 2022 Best Places to Work in Virginia, we are always looking to hire top talent in the field - come join us today!

Indigo IT is a process-driven and results-oriented Women-Owned Small Disadvantaged Business, headquartered in Reston, VA. INDIGO IT, LLC’s award-winning expertise encompasses areas critical to its customers’ mission objectives, including network engineering; information assurance; enterprise systems management; systems engineering and integration; program management, acquisition, and lifecycle support; engineering and logistics; medical transformation/health IT; and distance learning and training solutions.

SKILLS & ABILITIES:

• Experience in tracking and obtaining Service LEval Agrements (SLAs)

• Extensive A&A lifecycle experience.

• Able to review and comprehend DoD and Army policy requirements.

• Demonstrated history of developing A&A plans for current and upcoming authorization and Authority to Operate (ATO) efforts.

• Ability to develop Cybersecurity policy documentation and artifacts such as: syetem Security Plan, Security Policy, IT Contingency Plan, and any other A&A required artifacts.

• Experience in performing risk analysis.

• Understanding of network protocols, firewalls, VPNs, IDS/IPS systems, and other network security measures.

• Understanding of security measures and challenges in cloud computing environments such as AWS, Azure, or Google Cloud.

• Ability to identify potential security risks and vulnerabilities in systems and networks.

ESSENTIAL FUNCTIONS/RESPONSIBILITIES:

• Ensure that all software in the environment has gone through a rigorous software assurance and risk assessment process and complies with DoD and Army policies and best business practices and shall maintain a Cybersecurity Approved Software List.

• Create and continuously improve the process for software evaluation, to include a thorough review, risk assessment, and evaluate whether software is appropriate for use in the environment. The Contractor shall maintain a list of all software evaluations so when additional installations are requested, the software review process is streamlined and efficient

• Utilize enterprise software tools to perform a quarterly software assessment: identify any compliance issues with existing software, validate that the IT staff is removing outdated software, etc.

• Support the government in implementing a compliance program for internally developed and/or GOTS applications.

• Validate the application developer has developed and documented the application in compliance with Defense Information Systems Agency (DISA) STIGs. The Contractor shall review STIG checklists and supporting documentation, provide corrective action(s) if required, and process documentation into eMASS as needed.

• Plan and execute tasks as required to obtain the Assess Only ATO if an Assess-Only is required for an application.

• Respond to and mitigate security incidents reported to the ARL Cybersecurity through data collection, incident containment, and event correlation to detect, determine and minimize the effect of incidents to the ARL network.

• Investigate and manage incidents reported from the Cybersecurity Service Provider (CSSP), ensure appropriate action is taken, coordinate with the CSSP and appropriate IT staff until the incident is successfully closed out.

• Investigate any potential policy violations or security incidents, write a report with detailed findings, and remediation recommendations to the ISSM for determination upon notification.

• Manage the training and certification status of all ARL and subordinate users in the Army Training and Certification Tracking System (ATCTS).

• Follow government approved processes to notify users prior to training expiration and disable accounts as required if the training has not been completed within the 365-day requirement. By disabling accounts, the contractor will maintain a minimum of 98% compliance.

• Review appointment order paperwork for new and renewal privileged users; process for ISSM signature; and upload to ATCTS once the approval has been obtained.

• Notify and revoke any privileged access when a user falls out of compliance with the DoD and Army regulations.

• Develop and implement processes to ensure that ARL stays in compliance with DoD8570 and follow Army guidance when available to implement DoD8140.

• Prepare, manage, and arrange or conduct, recurring or regularly scheduled, Cybersecurity related training for Government personnel and supporting Contractors.

• Process and respond to all customer generated Cybersecurity emails and tickets.

• Validate that ARL systems meet baseline security requirements following DISA STIG guidance and provide recommendations to ARL IT staff on proper configuration.

• Perform high level reviews of quarterly STIG checklists.

• Provide Cybersecurity services for RDENETs to include a comprehensive review, recommendations, risk assessments and approvals.

• Validate that all systems within the enclave are configured in accordance with Vulnerability Scanning, HBSS, DISA STIGs, logging and monitoring requirements, etc.

EDUCATION & CERTIFICATIONS:

• Bachelor’s degree in Information Systems, Computer Science, Engineering, Business Administration, or related field

• Certified Information Systems Security Professional (CISSP)

EXPERIENCE:

• 10 -years of Cybersecurity experience.

• 5-years of A&A experience

WORK ENVIRONMENT:

• Work is generally performed in an office setting, with potential travel.

  At Indigo IT, we offer an expansive benefits package for our employees, which includes: Medical, Dental, and Vision coverage options. In addition, we offer 401(k) with company match, Group life and disability, Flex Spending Accounts (FSA), Paid Time Off (PTO), Paid holidays, and Education assistance. We also have in house training programs for employees, we reward thought leadership with bonuses and recognition for publishing, speaking, and innovative thought leadership in our industry.

  Indigo IT is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. This employer uses E-Verify.